[kernel-sec-discuss] r1805 - active
Michael Gilbert
gilbert-guest at alioth.debian.org
Sun Apr 4 20:39:56 UTC 2010
Author: gilbert-guest
Date: 2010-04-04 20:39:44 +0000 (Sun, 04 Apr 2010)
New Revision: 1805
Modified:
active/CVE-2009-4537
Log:
info
Modified: active/CVE-2009-4537
===================================================================
--- active/CVE-2009-4537 2010-04-03 00:08:44 UTC (rev 1804)
+++ active/CVE-2009-4537 2010-04-04 20:39:44 UTC (rev 1805)
@@ -5,14 +5,13 @@
http://www.openwall.com/lists/oss-security/2009/12/31/1
http://marc.info/?t=126202986900002&r=1&w=2
Notes:
- any deviation from the default settings opens the hole back up. Ben Hutchings has
- volunteered to work on a comprehensive fix if someone provides him the hardware. See:
+ the patch for this issue is partial; in the sense that any deviation from the
+ default settings opens the hole right back up. Ben Hutchings has volunteered
+ to work on a comprehensive fix if someone provides him the hardware. see:
http://lkml.org/lkml/2010/3/29/448
Bugs:
upstream: released (2.6.34-rc3) [c0cd884a]
-2.6.32-upstream-stable:
-linux-2.6:
-2.6.18-etch-security: ignored (EOL)
-2.6.24-etch-security: ignored (EOL)
-2.6.26-lenny-security:
-2.6.32-squeeze-security:
+2.6.32-upstream-stable: needed
+linux-2.6: pending (2.6.32-11) [bugfix/all/net-r8169-improved-rx-length-check-errors.patch]
+2.6.26-lenny-security: needed
+2.6.32-squeeze-security: pending (2.6.32-11) [bugfix/all/net-r8169-improved-rx-length-check-errors.patch]
More information about the kernel-sec-discuss
mailing list